Exciting news klaxon! Lightspin is so pleased to announce that we have completed support for Azure’s infrastructure layer, including full support for analyzing key infrastructure workloads. We can now support a wide range of Azure environments, including Virtual Machines, Container instances, Function App and App Services.
Lightspin’s platform aims to provide customers with full analysis of potential attack paths, and offers full visibility and insight from the permissions layer, as well as support for Kubernetes environments.
The Challenges of Azure
Full analysis over Azure environments has taken a lot of innovation behind the scenes for a few key reasons:
- Insufficient Research: There are currently no satisfactory studies in the field that provide insight into implementing privilege escalation and lateral movement risk on Azure.
- Identity and Access Management: IAM on Azure is complex. There are several layers that allow access in different scopes, including the ability to connect the IAM roles to the different workloads in system identity and user identity configurations. Each of these adds its own unique risk to the environment.
- Active Directory: Active Directory is an added consideration on Azure. All settings need to be analyzed, and certain use cases connect permissions in Active Directory with other environment workloads. If users have elevated permissions in Active Directory, they might be able to gain full access to the whole cloud environment, for example.
Multi-cloud Security Support
Increasingly, today’s organizations are relying on more than one cloud provider for their enterprise needs. A single production environment could easily combine multiple providers, and today’s security tools have a responsibility to rise to this challenge.
While some vendors claim to provide multi-cloud support, this is often provided in siloes, separating the detection into a list of associated threats for each cloud. In contrast, Lightspin’s cloud security platform offers a single view of prioritized threats, aggregated from across your cloud environment. This includes the infrastructural relationships between different providers in a single environment, for example how a configuration on AWS could negatively impact assets on Azure. This is real multi-cloud support, and provides far greater visibility and control, as well as reducing the overheads necessary to keep your environment safe.
Want to see for yourself how our multi-cloud contextualized cloud security works? Schedule a demo!